Comments on: EIGRP Authentication

By: felixbourne

felixbourne — Tue, 07 Jul 2009 20:32:34 +0000

Could an attacker spoof the address of another router in order to kill a competitor’s adjacency? A flood of such crafted packets could be an effective DoS.

By: jlgaddis

jlgaddis — Tue, 07 Jul 2009 03:00:44 +0000

Hmm, is it really a security vulnerability, invalidCCIE? I’m inclined to think that it’s not since, at that point, R1 is only expecting authenticated updates. If an update comes in that isn’t authenticated, I think it’s probably doing the right thing. I’d love to hear more on why you think it is a vulnerability, though.

By: invalidCCIE

invalidCCIE — Mon, 06 Jul 2009 12:25:16 +0000

pay attention to one interesting thing: if R1 receives hello packet with invalid authentication from address of R2, it immediately drops adjacency (not just ignore incorrect packet). from my point of view, it is security vulnerability